HIPAA Compliance at SurveyMonkey

SurveyMonkey & HIPAA

SurveyMonkey gives anyone in your organization the ability to create surveys while allowing your organization to own its data, manage users, and simplify billing for multiple accounts. HIPAA-compliant features are available to customers to give them an additional way to safeguard the security of protected health information they collect through online surveys. SurveyMonkey maintains appropriate administrative, physical, and technical safeguards to provide for the continuing security of your PHI.

Why HIPAA security is important

Due to concerns around privacy of information, the Health Insurance Portability and Accountability Act (HIPAA) became law in 1996, enacting strict rules around the protection of health information. Because HIPAA violations are taken very seriously by the government, and often result in hefty fines, HIPAA compliant surveys can help your organization function smoothly.

Thanks to SurveyMonkey’s HIPAA compliant security features, Enterprise customers can feel confident that their surveys will comply with HIPAA requirements.

SurveyMonkey as a business associate

Our standard business associate agreement (BAA) meets the requirement of HIPAA, making it easy for covered entities to bring SurveyMonkey on board as a business associate and to enable HIPAA-compliant features on their SurveyMonkey account.

In addition to ensuring we fulfill our duties as a business associate, we designed additional safeguard features for our HIPAA-enabled accounts to help covered entities comply with their own HIPAA obligations.